Why I do not trust free Wifi and always try to access my site prior to any valuable access from abroad. This is what I got last time in a hotel in London from the Hilton group. They are using a SSL sniffing man in the middle attack on my https connection. Beware to...

After getting my web server ramping up on encryption, the next target is the mail delivery and transport agent. In my case this is postfix and here are the settings for the TLS part: # TLS parameters smtp_use_tls = yes smtp_tls_CAfile =...

I’m going all in – SSL. Here is what I used to set it up: Install OpenVPN easy-rsa Version 3 (Find it on github). Moving the easryrsa3 folder to your desired location and edit the vars file to use SHA256 and 4096 key length. I also entered some data for my...

This articles describes the renewal of SSL certificates for courier pop3 and imap server. This is nescessary e.g. when the certificates are expired or contain the wrong hostname. First delete the exsiting certificates: rm -f /etc/courier/imapd.pem rm -f...